SAST for Kubernetes manifests

Problem to solve

Kubernetes manifests should be checked for sensitive data, especially pods definitions. Secrets should be encrypted.
Privileges checked.
PodSecurityPolicies are useful at runtime, but they're not enough. That's why we should run SAST on K8S yaml files.

Further details

Proposal

Detect yaml files in repos, and analyze their content to determine if they're manifests (maybe look for specific keys and values like apiVersion: v1, kind: Pod, etc.). We'll have to tweak the output of kubesec to fit our format.